public interface Saml2AuthenticationRequestFactory
samlp:AuthnRequestType
XML, and accompanying
signature data.
as defined by https://www.oasis-open.org/committees/download.php/35711/sstc-saml-core-errata-2.0-wd-06-diff.pdf
Page 50, Line 2147Modifier and Type | Method and Description |
---|---|
java.lang.String |
createAuthenticationRequest(Saml2AuthenticationRequest request)
Deprecated.
please use
createRedirectAuthenticationRequest(Saml2AuthenticationRequestContext)
or createPostAuthenticationRequest(Saml2AuthenticationRequestContext)
This method will be removed in future versions of Spring Security |
default Saml2PostAuthenticationRequest |
createPostAuthenticationRequest(Saml2AuthenticationRequestContext context)
Creates all the necessary AuthNRequest parameters for a POST binding.
|
default Saml2RedirectAuthenticationRequest |
createRedirectAuthenticationRequest(Saml2AuthenticationRequestContext context)
Creates all the necessary AuthNRequest parameters for a REDIRECT binding.
|
@Deprecated java.lang.String createAuthenticationRequest(Saml2AuthenticationRequest request)
createRedirectAuthenticationRequest(Saml2AuthenticationRequestContext)
or createPostAuthenticationRequest(Saml2AuthenticationRequestContext)
This method will be removed in future versions of Spring SecuritySAMLRequest
string for the request, and for a complete
set of data parameters please use createRedirectAuthenticationRequest(Saml2AuthenticationRequestContext)
or createPostAuthenticationRequest(Saml2AuthenticationRequestContext)
request
- information about the identity provider,
the recipient of this authentication request and accompanying dataSaml2Exception
- when a SAML library exception occursdefault Saml2RedirectAuthenticationRequest createRedirectAuthenticationRequest(Saml2AuthenticationRequestContext context)
Saml2AuthenticationRequestContext
doesn't contain any Saml2X509Credential.Saml2X509CredentialType.SIGNING
credentials
the result will not contain any signatures.
The data set will be signed and encoded for REDIRECT binding including the DEFLATE encoding.
It will contain the following parameters to be sent as part of the query string:
SAMLRequest, RelayState, SigAlg, Signature
.
The default implementation, for sake of backwards compatibility, of this method returns the
SAMLRequest message with an XML signature embedded, that should only be used for theSaml2MessageBinding.POST
binding, but works over Saml2MessageBinding.POST
with most providers.context
- - information about the identity provider, the recipient of this authentication request and
accompanying dataSaml2RedirectAuthenticationRequest
object with applicable http parameters
necessary to make the AuthNRequest over a POST or REDIRECT binding.
All parameters will be SAML encoded/deflated, but escaped, ie URI encoded or encoded for Form Data.Saml2Exception
- when a SAML library exception occursdefault Saml2PostAuthenticationRequest createPostAuthenticationRequest(Saml2AuthenticationRequestContext context)
Saml2AuthenticationRequestContext
doesn't contain any Saml2X509Credential.Saml2X509CredentialType.SIGNING
credentials
the result will not contain any signatures.
The data set will be signed and encoded for POST binding and if applicable signed with XML signatures.
will contain the following parameters to be sent as part of the form data: SAMLRequest, RelayState
.
The default implementation of this method returns the SAMLRequest message with an XML signature embedded,
that should only be used for the Saml2MessageBinding.POST
binding.context
- - information about the identity provider, the recipient of this authentication request and
accompanying dataSaml2PostAuthenticationRequest
object with applicable http parameters
necessary to make the AuthNRequest over a POST binding.
All parameters will be SAML encoded but not escaped for Form Data.Saml2Exception
- when a SAML library exception occurs